12345

5/08/2012

[Warning] Malicious file about portrait infringement


1. Information

INCA Internet response team detected malicious file which contains malicious file disguised as a portrait file from 04 May 2012. On April, various reports about this file can be found on internet so far, yet it can be found in Korea. Besides, this malicious file has various variants; we add patterns on our nProtect Anti-Virus. Containing EXE(ZIP)file on attachment of e-mail has great possibility to be revealed as a malicious file.



2. Real cases

[Sophos]
IMG0893.zip - Your photo all over Facebook? Naked? Malware campaign spammed out

[nProtect Response Team Official Blog]
[Caution] Malicious e-mail about BBB(Better Business Bureau)

Following image contains various malicious files. The title of e-mail is "FW:Why did you put this photo online?" (It may contain about portrait infringement)

To Korea May 4, 2012


To Germany May 8, 2012


To Korea again May 8, 2012


ZIP typed attachment is disguising as an image file, and it actually contains executable file.


User will be infected by malicious files after extracting and executing ZIP file.


After being infected, clone file of malicious file will be created on "All Users" path.


And it adds registry on following path and makes run on booting.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
SunJavaUpdateSched c:\documents and settings\all users\svchost.exe


svchost.exe tries to access TCP/IP, yet it doesn't connect certain host.

3. Summary

Spreading malicious file with social engineering is one of traditional technique. To use PC safely from security threats of these malicious attachments, we recommend you download latest security updates and obey following "Security management tips" for general users.

Security management tips

1. Maintain the latest security update on OS and applications
2. Use anti-virus SW from believable security company and keep updating the latest engine and using real time detecting function.
3. Do not see and download attached file from suspicious e-mail.
4. Keep caution to link from instant messenger and SNS.

INCA Internet (Security Response Center / Emergency Response Team) runs responding system against various security threats.
Posted by erteam at 14:57
Labels:

26 comments:

  1. Dave GerberApril 13, 2018 at 8:17 PM

    I've long thought that there are several different paths we could take to get to a more rational, egalitarian admissions system. The one I like most would make two changes to what we have in place right now at https://www.domyhomework4me.net/ do my homework for me


    ReplyDelete
  2. Robert WelainJune 14, 2018 at 7:45 PM

    Need help with an argumentative essay writing? Follow my link and get it!

    ReplyDelete
  3. adminDecember 12, 2018 at 3:28 PM

    KineMaster for ios
    Free fire ios

    KineMaster
    garena Free fire

    ReplyDelete
  4. Jay Jonna JamesonDecember 27, 2018 at 1:51 AM

    If you want to view a guide on writing a process essay, view it now then! Don't wait!

    ReplyDelete
  5. UnknownJanuary 10, 2019 at 10:14 PM

    Let's play Super Mario Bros to save Mushroom Princess now !!! The Mushroom Princess is being held captive by the evil Koopa tribe of turtles.

    ReplyDelete
  6. Amanda CrossFebruary 10, 2019 at 5:45 AM

    I think there is much more to learn on this topic. Just click on this link to proceed.

    ReplyDelete
  7. UnknownMarch 8, 2019 at 1:00 AM

    Your article causes me to think deeply about this issue, but in general, I fully support your opinion. By the way, I came across another interesting article - https://essaysreasy.online/blog/easy-essay-topics - here are a lot of interesting tips and hints on how to make the future work better.

    ReplyDelete
  8. HannahApril 4, 2019 at 12:15 AM

    Your article can be a living illustration for the Internet security essay! Together with tips taken from https://writemyessay4me.org/blog/get-harvard the paper will definitely be top-notch! Let alone the fact that there one can find useful info how to enter the best universities in the world!

    ReplyDelete
  9. UnknownApril 4, 2019 at 9:42 AM

    You better ignore this emails then virus everywhere.
    Megadede

    ReplyDelete
  10. UnknownApril 9, 2019 at 3:07 AM

    With motive and means, someone who watches your online video could easily obtain your full address just by knowing the city or the state in which you live in. American Gods 2 streaming

    ReplyDelete
  11. Rachel BraunMay 14, 2019 at 9:17 PM

    To be fiar to myself I do not really understand the topic you discussed here, so the information provided here quite important for me as for the student who ought to write the essay on such topic, but apart from your blog I found quite informative the site where you can easily buy pre written essays so thanks a lot

    ReplyDelete
  12. AltadefinizioneJune 19, 2019 at 7:19 AM

    A large number of individuals head to Google Video’s online website to look for more information on the features that allows them to make, upload, and share their own videos. altadefinizi.one

    ReplyDelete
  13. UnknownJuly 3, 2019 at 12:13 AM

    A business system isn’t hardware or software. zalukaj.ws

    ReplyDelete
  14. mcafee.com/activateJuly 15, 2019 at 9:40 PM

    this looks really amazing.

    ReplyDelete
  15. madalin stunt cars 2 unblockedJuly 26, 2019 at 3:39 PM

    The information you shared with us was very helpful, thank you very much.

    ReplyDelete
  16. HannahSeptember 15, 2019 at 5:54 PM

    This comment has been removed by the author.

    ReplyDelete
  17. Radley Co TadOctober 15, 2019 at 4:25 PM

    Great Article
    Network Security Projects for CSE


    JavaScript Training in Chennai



    Project Centers in Chennai



    JavaScript Training in Chennai

    ReplyDelete
  18. mariapaloraOctober 20, 2019 at 5:59 AM

    This entrepreneurial option involves trading expertise/value for money. This is the strategy of entrepreneurial experts. Mejortorrent

    ReplyDelete
  19. CharisDecember 29, 2019 at 3:49 AM

    Je pense que c'est parmi les informations tellement importantes pour moi. Merci d'avoir partagé. megadede series

    ReplyDelete
  20. Sophie GraceJanuary 2, 2020 at 5:09 PM

    I am really very thankful to you. Your post is really wonderful for me. I subscribe this post. With intersting game sims 4 skill cheats we also celebrate internation women's day. coming now

    ReplyDelete
  21. UnknownFebruary 18, 2020 at 7:31 AM


    تركيب جبس بورد بالرياض تركيب جبس بورد بالرياض
    معلم دهانات بالرياض معلم دهانات بالرياض
    ارخص نقل اثاث بجدة ارخص نقل اثاث بجدة
    فني تركيب ورق جدران بالرياض فني تركيب ورق جدران بالرياض
    نقل عفش من الدمام الى الاردن نقل عفش من الدمام الى الاردن

    ReplyDelete
  22. UnknownFebruary 23, 2020 at 11:52 PM

    thank you mate amazing post Lupin III: The First streaming

    ReplyDelete
  23. meldaresearchMay 19, 2020 at 4:11 PM

    Online education writing services companies have come up with Online Education Assignment Help for education and teaching studies students in order for them to score straight A’s in their custom education research paper services.

    ReplyDelete
  24. superbessay.comJune 24, 2020 at 1:42 AM

    Hello everyone. If I need someone to help me to write an essay, I always choose this writing service. They are really the best

    ReplyDelete
  25. FlorahmeldaJune 24, 2020 at 1:34 PM

    To seek the best Psychology Research Writing Services for those studying psychology writing services, it is important to hire award winning psychology paper writing help services.

    ReplyDelete
  26. UnknownOctober 20, 2020 at 4:33 AM

    Thanks for sharing.I found a lot of interesting information here. A really good post, very thankful and hopeful that you will write many more posts like this one.
    health tips in urdu

    ReplyDelete

Subscribe to: Post Comments (Atom)